Error AADSTS53000 raised after migrating from AAD graph api end point to Microsoft graph api.

Question

question

Vsree asked Dec 15, '21 JamesHamil-MSFT answered Dec 18, '21

Error AADSTS53000 raised after migrating from AAD graph api end point to Microsoft graph api.

Hi

I'm trying to migrate my application from AAD graph api to Microsoft graph api endpoints. I get an error on the below line

string graphResourceId = "https://graph.microsoft.com/";
AuthenticationResult authResult = await authContext.AcquireTokenByAuthorizationCodeAsync(code, new Uri(appRedirectUrl), credentials, graphResourceId);

error raised:

AADSTS53000: Device is not in required device state: compliant. Conditional Access policy requires a compliant device, and the device is not compliant. The user must enroll their device with an approved MDM provider like Intune.

"interaction_required"

thanks,
VSree

azure-ad-app-registration azure-ad-graph-deprecation

· 1

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JamesHamil-MSFT · Dec 16, 2021 at 12:56 AM

Hi, we are investigating your issue and will update you shortly.

Best,
James

1 ·

Answer 1 · 2021-12-16T23:21:21.327Z

JamesHamil-MSFT answered Dec 16, '21

Hi @Vsree , this is an issue with your conditional access policy somewhere. This document details how you can check this. Please see if this applies to your environment and let me know.

Thank you,
James

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

question